$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: AZs5icGpN49JbM5utJTO23JaIH/tdn3UwGqBJHjoyT0= Subject key identifier: 20:F1:76:88:2E:7C:CD:D3:E3:42:C3:4D:7D:01:AE:EB:C8:7C:6E:85 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 0124 Signing time: Sat 29 Mar 2025 04:07:19 +0000 Manifest this update: Sat 29 Mar 2025 04:07:18 +0000 Manifest next update: Sat 05 Apr 2025 04:07:18 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: q9g/NwGZvCWcedEXyeqstT3JH8yiEzBBA3hMcCx+aXA=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: RkTUA678ggeVul1y+nwQF7cmzTi/KyCvH3jL9UTL73c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804 Validity Not Before: Mar 29 04:07:18 2025 GMT Not After : Apr 5 04:07:18 2025 GMT Subject: CN=67e771f7-366b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fa:08:26:f8:fa:cc:d2:0a:5d:9c:24:65:34: dc:a2:1b:4f:01:bc:2a:32:40:99:8e:16:d6:0d:53: 33:31:e1:b4:6f:87:ce:9a:ed:ec:d1:2c:57:e9:b9: b2:04:92:92:0b:8d:09:51:0a:38:6c:59:ac:50:4a: 91:fe:4a:20:a4:ec:d7:eb:34:e0:b2:56:4e:07:0a: 9a:23:cc:0b:8b:35:8a:52:8e:71:86:e7:13:c5:d8: 24:f0:e6:ff:67:3f:a4:20:fe:9f:51:b2:f0:31:fd: e1:37:a5:13:25:11:9e:e9:b4:fd:ac:af:2b:48:8d: e1:f9:bd:c5:92:0f:c7:c2:ce:72:7d:42:12:a4:7d: 8d:72:bd:93:06:77:f6:5c:2f:9f:2b:20:20:ec:80: 66:22:89:73:ca:4d:82:75:99:0c:ab:45:51:0b:68: 82:60:5a:07:92:5a:11:45:0f:33:f2:51:ee:62:e6: cb:8f:ee:ff:9a:1a:6c:fb:21:ff:e9:97:94:4f:98: a7:f0:df:39:98:34:c6:17:7a:fe:3b:a2:48:c2:94: 7f:40:b5:78:6c:4b:ca:b3:a4:8c:6e:57:f5:bf:bf: e7:0a:3a:08:86:4b:24:6f:76:16:e6:17:a7:4f:f9: 49:b2:f8:ad:13:74:df:2f:ad:25:64:fb:3a:3a:be: ef:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F1:76:88:2E:7C:CD:D3:E3:42:C3:4D:7D:01:AE:EB:C8:7C:6E:85 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:5d:11:00:fa:0e:61:60:a7:3b:4d:22:db:33:49:88:cc:bd: 09:5e:cc:78:17:b1:18:d2:7f:5d:31:e8:03:e0:b1:5d:df:0b: d1:87:08:44:a8:61:9e:09:fa:42:1c:f5:9f:c2:a5:fe:64:4b: 53:2a:67:63:c8:56:09:9d:47:4b:4a:2b:38:49:93:2a:7e:14: 79:a6:07:e9:c9:cd:23:78:be:8a:95:cf:74:e4:67:93:88:b0: 97:e3:14:49:89:fb:42:67:92:f2:ba:c0:53:82:26:9a:d2:e1: 25:65:4c:e6:4f:95:08:57:6f:d4:c1:fd:c9:11:70:e1:52:fa: 37:6c:85:73:06:4e:cb:6d:4f:a3:f6:c0:1e:a4:08:f0:d3:0c: a9:b4:69:c8:4f:0b:da:c7:64:6c:07:94:e2:eb:81:ad:85:18: 2b:b1:27:e4:b7:cd:02:db:f6:08:3e:9f:9c:ff:50:4c:a9:da: ac:37:67:71:8d:86:96:23:9e:87:0c:fb:74:4e:80:7e:2a:5a: d5:05:65:f1:5e:c1:d6:35:06:4e:7e:c4:3a:a0:63:3f:b0:98: 42:5a:c3:e2:85:eb:87:a4:85:01:f2:8b:d9:b2:1f:55:13:62: 90:ff:cc:3b:d0:f2:2c:3e:7e:1e:ff:77:61:88:bb:b1:e6:ac: 74:fb:82:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjUwMzI5MDQwNzE4WhcNMjUwNDA1MDQwNzE4WjAYMRYwFAYD VQQDEw02N2U3NzFmNy0zNjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/oIJvj6zNIKXZwkZTTcohtPAbwqMkCZjhbWDVMzMeG0b4fOmu3s0SxX6bmy BJKSC40JUQo4bFmsUEqR/kogpOzX6zTgslZOBwqaI8wLizWKUo5xhucTxdgk8Ob/ Zz+kIP6fUbLwMf3hN6UTJRGe6bT9rK8rSI3h+b3Fkg/Hws5yfUISpH2Ncr2TBnf2 XC+fKyAg7IBmIolzyk2CdZkMq0VRC2iCYFoHkloRRQ8z8lHuYubLj+7/mhps+yH/ 6ZeUT5in8N85mDTGF3r+O6JIwpR/QLV4bEvKs6SMblf1v7/nCjoIhkskb3YW5hen T/lJsvitE3TfL60lZPs6Or7v+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDxdogu fM3T40LDTX0BruvIfG6FMB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASXREA+g5hYKc7TSLbM0mIzL0JXsx4F7EY0n9dMegD4LFd3wvRhwhE qGGeCfpCHPWfwqX+ZEtTKmdjyFYJnUdLSis4SZMqfhR5pgfpyc0jeL6Klc905GeT iLCX4xRJiftCZ5LyusBTgiaa0uElZUzmT5UIV2/Uwf3JEXDhUvo3bIVzBk7LbU+j 9sAepAjw0wyptGnITwvax2RsB5Ti64GthRgrsSfkt80C2/YIPp+c/1BMqdqsN2dx jYaWI56HDPt0ToB+KlrVBWXxXsHWNQZOfsQ6oGM/sJhCWsPiheuHpIUB8ovZsh9V E2KQ/8w70PIsPn4e/3dhiLux5qx0+4KN -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:55 2025 by rpki-client